Centralized Web Application Firewall Security System
Order ID 53563633773 Type Essay Writer Level Masters Style APA Sources/References 4 Perfect Number of Pages to Order 5-10 Pages Description/Paper Instructions
Centralized Web Application Firewall Security System
Running head: RESEARCH DRAFT 1
RESEARCH DRAFT 2
The Research Draft
Mohana Manikanta Patibandla
University of Cumberland’s
Introduction
Fundamentally, an application firewall refers to a countersecurity measure whose aim is to limit access by an operating system’s applications. Earlier on, it is imperative to note that the performance of a firewall was mainly about control of data flow to and from the CPU where it examined each data packed and determined whether it should be forwarded to a specific destination. Today, application firewalls are offering additional protection through controlling file execution or specific handling of data by software (Tøndel, Bartnes & Jaatun, 2014). It has been acclaimed that the best performance of a firewall is only realized if the user can configure it so as to define the ports through which unwanted data may enter or leave. Notably, though the firewalls may be configured that does not means that an intruder will not get past it which brings forth the major contention of this paper. Are application firewalls effective in upholding the security of applications in the event of a cyber-attack?
The Background
A study carried out by Hannes Holm and Mathias Ekstedt (2013) to evaluate of the application firewalls’ efficiency in the event of an attack. Through use of injection attacks, the researchers found out that the prevention rate is 80% in case that all measures have been put in place and only 25% if all the measures have not been employed. Measures included involving a professional in configuring the firewall, having a skilled operator monitoring the firewall, and whether a black box (automated one) had been employed in tuning the firewall. When all these measures have been put in place, the researchers found out that a prevention rate of 80% if normally recognized. This is an indicator that even when best practices are adopted, an intruder is still able to infiltrate a system which means that a firewall may not be an effective tool.
At the organizational level, it is imperative to note that a majority of small and mid-sized organizations do not have the required personnel when it comes to application firewalls. The companies only purchase the software from vendors, install them, and enable the detection mode. However, as earlier noted this is not enough as there is a need for configuration and turning which improves the performance of the firewalls. When this is not done, studies have shown that firewalls are easily bypassed and an organization may not quickly learn about an infiltration. This comes out as a major weakness as it means that configuration must be done by professionals who should also closely monitor a system. These are some of the best practices that are unlikely to be realized by most organizations.
Additionally, there are constantly evolving web applications which require customized application firewalls. Today, it is common to see even 1990s CGI scripts which are paired with AJAX applications which are in turn using third party APIs and web services in a cloud. This indicates the evolution and complexity of the application structure which requires firewalls that are as well complex and customized (Tøndel et al., 2014). However, most organizations do not adhere to this meaning that the current firewalls are vulnerable hence can easily be bypassed especially in this era of rampant cyber security incidents.
It is worth noting that though application firewalls are good at offering preventive security where they can prevent simple vectors such as SQL injections, they may not be able to keep out unknown application logic vulnerabilities. Such vulnerabilities normally require an in-depth understanding of application’s business logic (Tøndel et al., 2014). Today, there are a number of vendors that are trying to design firewalls that are using incremental rule-set hardened in pair with IP reputation as well as behavioral white-listing and machine learning in a bid to prevent applications from the logic vulnerabilities. However, these new designs have not proven effective as they are still bypassed. This is due to the fact that they must pass some complicated learning cycles which tend to take a longer time meaning they are not reliable enough.
In today’s application security, firewalls are no longer entirely effective in upholding the security of applications they must work in conjunction with other security features such as vulnerability scanners which enable easier scanning and identification of a particular threat. Additionally, it has been recommended that every organization should look for application firewalls that are easy to customize and those that are compatible with other security controls as a means of promoting the security level. More so, it is deemed best practices if an organization can hire experts such as IT professionals who will monitor a system for threats and also configure the system in the best manner. This indicates that though application firewalls are in use in various institutions and organizations, they are not as effective and should be paired with other security features. This is considered a best approach especially when a business organization is at a higher risk of an attack such as banks and hospitals.
RUBRIC
QUALITY OF RESPONSE NO RESPONSE POOR / UNSATISFACTORY SATISFACTORY GOOD EXCELLENT Content (worth a maximum of 50% of the total points) Zero points: Student failed to submit the final paper. 20 points out of 50: The essay illustrates poor understanding of the relevant material by failing to address or incorrectly addressing the relevant content; failing to identify or inaccurately explaining/defining key concepts/ideas; ignoring or incorrectly explaining key points/claims and the reasoning behind them; and/or incorrectly or inappropriately using terminology; and elements of the response are lacking. 30 points out of 50: The essay illustrates a rudimentary understanding of the relevant material by mentioning but not full explaining the relevant content; identifying some of the key concepts/ideas though failing to fully or accurately explain many of them; using terminology, though sometimes inaccurately or inappropriately; and/or incorporating some key claims/points but failing to explain the reasoning behind them or doing so inaccurately. Elements of the required response may also be lacking. 40 points out of 50: The essay illustrates solid understanding of the relevant material by correctly addressing most of the relevant content; identifying and explaining most of the key concepts/ideas; using correct terminology; explaining the reasoning behind most of the key points/claims; and/or where necessary or useful, substantiating some points with accurate examples. The answer is complete. 50 points: The essay illustrates exemplary understanding of the relevant material by thoroughly and correctly addressing the relevant content; identifying and explaining all of the key concepts/ideas; using correct terminology explaining the reasoning behind key points/claims and substantiating, as necessary/useful, points with several accurate and illuminating examples. No aspects of the required answer are missing. Use of Sources (worth a maximum of 20% of the total points). Zero points: Student failed to include citations and/or references. Or the student failed to submit a final paper. 5 out 20 points: Sources are seldom cited to support statements and/or format of citations are not recognizable as APA 6th Edition format. There are major errors in the formation of the references and citations. And/or there is a major reliance on highly questionable. The Student fails to provide an adequate synthesis of research collected for the paper. 10 out 20 points: References to scholarly sources are occasionally given; many statements seem unsubstantiated. Frequent errors in APA 6th Edition format, leaving the reader confused about the source of the information. There are significant errors of the formation in the references and citations. And/or there is a significant use of highly questionable sources. 15 out 20 points: Credible Scholarly sources are used effectively support claims and are, for the most part, clear and fairly represented. APA 6th Edition is used with only a few minor errors. There are minor errors in reference and/or citations. And/or there is some use of questionable sources. 20 points: Credible scholarly sources are used to give compelling evidence to support claims and are clearly and fairly represented. APA 6th Edition format is used accurately and consistently. The student uses above the maximum required references in the development of the assignment. Grammar (worth maximum of 20% of total points) Zero points: Student failed to submit the final paper. 5 points out of 20: The paper does not communicate ideas/points clearly due to inappropriate use of terminology and vague language; thoughts and sentences are disjointed or incomprehensible; organization lacking; and/or numerous grammatical, spelling/punctuation errors 10 points out 20: The paper is often unclear and difficult to follow due to some inappropriate terminology and/or vague language; ideas may be fragmented, wandering and/or repetitive; poor organization; and/or some grammatical, spelling, punctuation errors 15 points out of 20: The paper is mostly clear as a result of appropriate use of terminology and minimal vagueness; no tangents and no repetition; fairly good organization; almost perfect grammar, spelling, punctuation, and word usage. 20 points: The paper is clear, concise, and a pleasure to read as a result of appropriate and precise use of terminology; total coherence of thoughts and presentation and logical organization; and the essay is error free. Structure of the Paper (worth 10% of total points) Zero points: Student failed to submit the final paper. 3 points out of 10: Student needs to develop better formatting skills. The paper omits significant structural elements required for and APA 6th edition paper. Formatting of the paper has major flaws. The paper does not conform to APA 6th edition requirements whatsoever. 5 points out of 10: Appearance of final paper demonstrates the student’s limited ability to format the paper. There are significant errors in formatting and/or the total omission of major components of an APA 6th edition paper. They can include the omission of the cover page, abstract, and page numbers. Additionally the page has major formatting issues with spacing or paragraph formation. Font size might not conform to size requirements. The student also significantly writes too large or too short of and paper 7 points out of 10: Research paper presents an above-average use of formatting skills. The paper has slight errors within the paper. This can include small errors or omissions with the cover page, abstract, page number, and headers. There could be also slight formatting issues with the document spacing or the font Additionally the paper might slightly exceed or undershoot the specific number of required written pages for the assignment. 10 points: Student provides a high-caliber, formatted paper. This includes an APA 6th edition cover page, abstract, page number, headers and is double spaced in 12’ Times Roman Font. Additionally, the paper conforms to the specific number of required written pages and neither goes over or under the specified length of the paper. GET THIS PROJECT NOW BY CLICKING ON THIS LINK TO PLACE THE ORDER
CLICK ON THE LINK HERE: https://www.perfectacademic.com/orders/ordernow
Also, you can place the order at www.collegepaper.us/orders/ordernow / www.phdwriters.us/orders/ordernow
Do You Have Any Other Essay/Assignment/Class Project/Homework Related to this? Click Here Now [CLICK ME]and Have It Done by Our PhD Qualified Writers!!